Back to all jobs
N
Compliance Specialist
NICE
Germany - Düsseldorf1w ago
About the role
<div class="content-intro"><p>At NiCE, we don’t limit our challenges. We challenge our limits. Always. We’re ambitious. We’re game changers. And we play to win. We set the highest standards and execute beyond them. And if you’re like us, we can offer you the ultimate career opportunity that will light a fire within you.</p></div><p><strong><span data-contrast="none">Wer wir sind | About Cognigy</span></strong><span data-ccp-props="{"335559738":360,"335559739":120,"335572079":6,"335572080":4,"335572081":13390336,"469789806":"single"}"> </span></p>
<p><span data-contrast="none">Cognigy ist eine der führenden Enterprise-Plattformen für konversationelle KI und ist Teil von NiCE. Unsere Produkte werden von globalen Unternehmen in regulierten Branchen eingesetzt – von Finanzdienstleistungen über Gesundheitswesen bis hin zur öffentlichen Hand. Compliance ist kein Overhead bei uns – sie ist ein Wettbewerbsvorteil.</span><span data-ccp-props="{"335559738":60,"335559739":60}"> </span></p>
<p><strong><span data-contrast="none">Zweck der Stelle | Role Purpose</span></strong><span data-ccp-props="{"335559738":360,"335559739":120,"335572079":6,"335572080":4,"335572081":13390336,"469789806":"single"}"> </span></p>
<p><span data-contrast="none">Diese Stelle sichert Cognigy’s operative Compliance-Fähigkeit: von der längerfristigen Zertifizierungsbereitschaft bis hin zur konkreten Unterstützung bei Kundenanfragen im Vertriebsprozess. Der Stelleninhaber ist das operative Zentrum unserer Compliance-Infrastruktur – mit klarer Verantwortung für Vanta als System of Record, die jährlichen Audit-Zyklen und die schnelle, präzise Beantwortung sicherheitsrelevanter Anfragen von Kunden und Interessenten.</span></p>
<p><span data-contrast="none">This role secures Cognigy’s operational compliance capability – from long-term certification readiness to hands-on support during customer security reviews. The role owner is the operational hub of our compliance infrastructure: owning Vanta as system of record, managing annual audit cycles across multiple frameworks, and ensuring fast, accurate responses to security and compliance requests from customers and prospects, in both German and English.</span> <span data-ccp-props="{"335559738":160}"> </span></p>
<p><strong><span data-contrast="none">Aufgabenbereiche | Key Responsibilities</span></strong><span data-ccp-props="{"335559738":360,"335559739":120,"335572079":6,"335572080":4,"335572081":13390336,"469789806":"single"}"> </span></p>
<ol>
<li><strong><span data-contrast="none"> GRC-Plattform& Vanta-Ownership (ca. 35 %)</span></strong></li>
</ol>
<ul>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="1" data-aria-level="1"><span data-contrast="none">Vanta als zentrales System of Record pflegen: Kontrollen, Tests, Nachweise und Framework-Mappings aktuell und auditfähig halten.</span> </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="1" data-aria-level="1">Failing oder ablaufende Vanta-Checks monitoren und Remediation mit Control Ownern in Engineering, IT, HR und Legal koordinieren. </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="1" data-aria-level="1">Neue Integrationen einrichten, User-Zugriffe verwalten und als erste Eskalationsstelle für interne Compliance-Plattformfragen fungieren.<span data-ccp-props="{"335559738":40,"335559739":40}"> </span></li>
</ul>
<ol>
<li><strong><span data-contrast="none"> Audit-Evidenz&Zertifizierungsunterstützung (ca. 25 %)</span></strong><span data-ccp-props="{"335559738":240,"335559739":80}"> </span></li>
</ol>
<ul>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="4" data-aria-level="1"><span data-contrast="none">Audit-Nachweise für ISO 27001, SOC 2 Type II, PCI DSS, C5 und TISAX sammeln, strukturieren und pflegen.</span> </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="4" data-aria-level="1">Policy-Review-Zyklen verfolgen; sicherstellen, dass alle Richtlinien termingerecht abgezeichnet und versionskontrolliert dokumentiert sind. </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="4" data-aria-level="1">Als operative Schnittstelle zu externen Auditoren während der Fieldwork-Phasen dienen.<span data-ccp-props="{"335559738":40,"335559739":40}"> </span></li>
</ul>
<ol>
<li><strong><span data-contrast="none"> Customer Trust & Assurance (ca. 30 %)</span></strong></li>
</ol>
<ul>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="7" data-aria-level="1"><span data-contrast="none">Sicherheitsfragebögen, DDQs, TPQ-Formulare, RFP/RFI-Security-Annexes und Bid-Dokumentation auf Deutsch und Englisch eigenständig bearbeiten und einreichen.</span> </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="7" data-aria-level="1">Compliance-Ansprechpartner für den deutschsprachigen Vertrieb bei laufenden Ausschreibungen und Vertragsverlängerungen; Antwortzeiten same/next business day für Standardanfragen. </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="7" data-aria-level="1">Kundenrelevante Compliance-Unterlagen erstellen und pflegen: One-Pager, Zertifizierungsübersichten, TOMs, DPIA-Unterstützungsdokumente – bilingual. </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="7" data-aria-level="1">Compliance-relevante Vertragsklauseln in MSAs, DPAs und NDA-Anhängen prüfen und an Legal eskalieren, wo nötig.<span data-ccp-props="{"335559738":40,"335559739":40}"> </span></li>
</ul>
<p><span data-ccp-props="{"335559738":80}"> </span><strong><span data-contrast="none">Knowledge Base &Prozessverbesserung(ca. 10 %)</span></strong><span data-ccp-props="{"335559738":240,"335559739":80}"> </span></p>
<ul>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="11" data-aria-level="1"><span data-contrast="none">Strukturierte Bibliothek standardisierter Fragebogen-Antworten, wiederverwendbarer Templates und Referenzmaterialien auf Deutsch und Englisch aufbauen und pflegen.</span> </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="11" data-aria-level="1">Wiederkehrende Lücken oder Ineffizienzen im Fragebogenprozess identifizieren und Workflow-Verbesserungen vorschlagen.<span data-ccp-props="{"335559738":40,"335559739":40}"> </span></li>
</ul>
<p><strong><span data-contrast="none">Anforderungsprofil | Requirements</span></strong><span data-ccp-props="{"335559738":360,"335559739":120,"335572079":6,"335572080":4,"335572081":13390336,"469789806":"single"}"> </span></p>
<p><strong><span data-contrast="none">Erforderlich | Required</span></strong><span data-ccp-props="{"335559738":240,"335559739":80}"> </span></p>
<ul>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="13" data-aria-level="1"><span data-contrast="none">3–5 Jahre Berufserfahrung in IT-Compliance, Informationssicherheit, Legal Tech oder einem vergleichbaren Bereich.</span> </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="13" data-aria-level="1">Nachgewiesene Kenntnisse in mindestens zwei der Frameworks: ISO 27001, SOC 2, C5 (BSI), PCI DSS. </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="13" data-aria-level="1">Deutsch C1+ und Englisch C1+ – schriftlich wie mündlich; sichere Fachkommunikation in beiden Sprachen ist Pflicht. </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="13" data-aria-level="1">Erfahrung im selbständigen Bearbeiten von Sicherheitsfragebögen, DDQs oder vergleichbaren Bid-Dokumenten. </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="13" data-aria-level="1">Strukturierte, präzise Arbeitsweise und nachweisliches Zeitmanagement in fristgebundenen Umgebungen.<span data-ccp-props="{"335559738":40,"335559739":40}"> </span></li>
</ul>
<p><strong><span data-contrast="none">Von Vorteil | Preferred</span></strong><span data-ccp-props="{"335559738":240,"335559739":80}"> </span></p>
<ul>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="18" data-aria-level="1"><span data-contrast="none">Erfahrung mit GRC-Plattformen: Vanta, OneTrust, ServiceNow GRC oder vergleichbaren Tools.</span> </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="18" data-aria-level="1">Zertifizierungen: ISO 27001 Lead Implementer/Auditor, CISA, CIPP/E, CompTIA Security+. </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="18" data-aria-level="1">Kenntnisse im deutschen und EU-Datenschutzrecht (DSGVO, BDSG); Erfahrung mit DPAs, TOMs, TIAs. </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="18" data-aria-level="1">Hintergrund in Legal Tech, IT-Recht oder als Paralegal im technischen Umfeld. </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="18" data-aria-level="1">Erfahrung in einem SaaS- oder Cloud-Unternehmen, idealerweise mit regulierten Kunden (Finanz, Gesundheit, öffentlicher Sektor).<span data-ccp-props="{"335559738":40,"335559739":40}"> </span></li>
</ul>
<p><strong><span data-contrast="none">Was wir bieten | What We Offer</span></strong><span data-ccp-props="{"335559738":360,"335559739":120,"335572079":6,"335572080":4,"335572081":13390336,"469789806":"single"}"> </span></p>
<ul>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="23" data-aria-level="1"><span data-contrast="none">Zentrale Rolle in einem wachsenden Compliance-Team mit direktem Einfluss auf Produktstrategie und Kundenerfolg.</span> </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="23" data-aria-level="1">Strukturierter Onboarding-Plan und klare Entwicklungspfade in Richtung Senior Compliance / GRC Lead. </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="23" data-aria-level="1">Arbeit mit modernen Tools: Vanta, AWS/Azure-native Security-Services, MS 365. </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="23" data-aria-level="1">Hybrides Arbeitsmodell, Weiterbildungsbudget, Zertifizierungsunterstützung. </li>
<li data-leveltext="–" data-font="" data-listid="1" data-list-defn-props="{"335551500":21196,"335552541":1,"335559685":560,"335559991":280,"469769242":[8226],"469777803":"left","469777804":"–","469777815":"hybridMultilevel"}" data-aria-posinset="23" data-aria-level="1">Internationales Team – enge Zusammenarbeit mit Security, Legal, Engineering und Sales in DACH und EMEA.<span data-ccp-props="{"335559738":40,"335559739":40}"> </span></li>
</ul>
<p><strong>Requisition ID: 10661<br>Reporting into: Manager, Safety & Security</strong><br><strong>Role Type: </strong>Individual Contributor</p>
<p>#LI-Hybrid</p><div class="content-conclusion"><p><em><strong>About NiCE </strong></em></p>
<p><em>NICE Ltd. (NASDAQ: NICE) software products are used by 25,000+ global businesses, including 85 of the Fortune 100 corporations, to deliver extraordinary customer experiences, fight financial crime and ensure public safety. Every day, NiCE software manages more than 120 million customer interactions and monitors 3+ billion financial transactions. </em></p>
<p><em>Known as an innovation powerhouse that excels in AI, cloud and digital, NiCE is consistently recognized as the market leader in its domains, with over 8,500 employees across 30+ countries. </em></p>
<p><em>NiCE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.</em></p>
<p> </p></div>
753,000+ hidden jobs like this
NICE and thousands of companies post here first — often days before LinkedIn or Indeed. Your first 5 applications are free; go Pro to apply without limits.
Everything Pro unlocks:
- Unlimited applications — free stops at 5
- Track every application in one place
- Apply straight to the source, one click
- Save & organize roles you love
- Roles pulled from company boards before the big sites
